Foundry

Smart Contract Supply Chain Attacks: The Foundry, Hardhat, and npm Risk Nobody's Auditing

Your contract is secure. Your dependencies aren't. A look at how malicious Foundry plugins, poisoned npm packages, and hijacked Solidity libraries are the smart contract attack vector of 2026.